Historically, corporations have used digital forensic investigation tools for legal requests, discrimination and harassment investigations, IP theft investigations, compliance, M&A and other HR investigations. However, despite what is reported in the news about cyber incidents and cyberattacks, many are perpetrated by...
Executives are required to make “data-driven” decisions; Metrics, Objectives & Key Results (OKRs), Key Performance Indicators (KPIs) – however you define being data-driven – to measure security program effectiveness, and frame their conversations to the board, partners, and company at large.
Yet, there...
Each day organizations face new threats that jeopardize their critical networks. Gaining visibility into the security risks your supply chain or third-party vendors pose to your organization is a growing priority among cybersecurity leaders. Next-generation cybersecurity practices will require organizations to align...
With open channels of communication come hidden threats. Inside this eBook learn how communication and social media tools are changing the insider risk equation for compliance, IT and legal teams.
Download the eBook dive deep into 5 major areas of risk:
Trio-of-trouble -people-based data risks;
HR policy...
With increased digitalisation, core users have access to systems and networks that host millions of records and critical business assets. Security leaders are racing to protect their business and manage a remote workforce.
Download this whitepaper to learn more:
The causes & catalysts of insider threats;
What...
Many enterprises are realizing that a CASB (Cloud Access Security Broker) is essential for securing their cloud apps and services. This whitepaper explores topics such as:
How CASB can help manage people-based risk, apps and data in the cloud ;
What are the top benefits of CASB & it's role across business...
A high-ranking U.S. government official has been convicted of stealing the personal information of thousands of federal workers as well as government software. Murali Y. Venkata, 56, was acting branch chief at the DHS's Information Technology Division in the Office of the Inspector General.
Investment platform Cash App, a subsidiary of U.S.-based payments company Block, says it has been breached. The incident happened last year when a former employee downloaded reports containing Cash App U.S. customer information, including full names, brokerage account numbers and portfolio values.
The latest edition of the ISMG Security Report reviews the latest cyber resilience "call to action" from the White House and also explores authentication provider Okta's failure to inform hundreds of customers in a timely manner that their data could have been stolen by the Lapsus$ group.
Insider risk and data loss prevention (DLP) are a top concern for organisations today. And it makes sense, with a distributed workforce and increasing reliance on technology, legacy, on-prem DLP technology hasn’t lived up to its promises.
That’s because data loss begins with people, whether careless, compromised...
Employees with too much access can pose an insider threat. When employees have access to more than they need to do their job, there are more opportunities for mistakes, whether accidental or not. Lack of accountability means you
don’t know who did what, when. If too many people have the same level of access and...
All organizations with third-party environments are at risk of supply chain attacks, especially as digital environments become more complex. The risks of supply chain attacks on IT environments extend beyond data loss, especially when operational technologies are targeted. An effective defense requires technology that...
A consolidated legal case that includes allegations of embezzlement, trade secret theft and intimidation offers an inside look at a complicated and messy alleged insider breach reported last year by a Texas-based accountable care organization.
Things are not always what they seem, says incident response expert Joseph Carson, pointing to a case involving ransomware that infected a company in Ukraine, but for which there was no external attack path. Ultimately, his investigation found that ransomware had been used to hide internal fraud.
The Annual Data Exposure Report 2022 shines a spotlight on the risk of cloud technologies and the need for better Insider Risk education. The Great Resignation and the hybrid-remote workforce is creating urgent data exposure challenges. Findings from the report reveal that cybersecurity teams are facing unprecedented...
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing cuinfosecurity.com, you agree to our use of cookies.
